Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/g6tRIUFs7yAiqqTOivZCpCkCsoY.roa
File: g6tRIUFs7yAiqqTOivZCpCkCsoY.roa (raw, json)
Hash identifier: tfCTOcqz+yoF00jHBGEAzsQ3rY40A0j7KnkfiKt2j6M=
Subject key identifier: 83:AB:51:21:41:6C:EF:20:22:AA:A4:CE:8A:F6:42:A4:29:02:B2:86
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 08CBAAF0
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/g6tRIUFs7yAiqqTOivZCpCkCsoY.roa
Signing time: Sat 01 Jan 2022 02:58:33 +0000
ROA not before: Sat 01 Jan 2022 02:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51926
IP address blocks: 91.220.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147565296 (0x8cbaaf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Jan 1 02:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83ab5121416cef2022aaa4ce8af642a42902b286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:76:fb:e5:38:2a:87:24:ae:d6:2a:49:87:9a:
71:03:d9:91:de:80:f4:29:64:f1:00:d0:24:68:e8:
73:3e:7c:ea:db:7b:d8:25:63:59:37:cb:0d:83:54:
6c:69:ee:d2:82:d5:b6:0a:27:c0:ed:e7:9a:9f:f4:
0b:48:cb:3c:d5:a2:58:8c:5f:42:7e:b0:4a:b6:93:
cc:13:8c:1f:8f:fa:45:7d:40:b0:09:65:63:28:8c:
df:e1:ea:fe:f4:ad:eb:ab:cc:0f:9b:04:cd:d5:07:
09:ba:c2:5a:ab:a4:0a:2c:29:a1:1a:97:25:8f:b0:
77:58:e1:be:fd:6e:d1:1f:44:33:bc:7b:ac:18:32:
c7:c9:8f:15:f5:31:2c:26:38:32:b1:72:b7:89:46:
57:5a:d2:54:de:7f:04:19:de:45:d7:17:6b:65:58:
c5:ca:f8:c4:75:02:20:34:a6:e2:b8:2f:7c:55:ab:
7c:e9:0c:b2:27:1d:25:8c:b6:8b:fc:14:96:5d:e4:
d5:da:35:91:f8:6b:de:fc:39:da:67:00:21:75:8d:
98:46:94:ba:97:2a:63:a3:fa:6b:d5:5a:61:05:55:
25:54:f5:0b:89:ca:b9:c3:9e:44:49:b2:00:38:88:
50:40:e6:d9:b7:75:49:a3:e7:0a:82:b3:78:c1:16:
71:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:AB:51:21:41:6C:EF:20:22:AA:A4:CE:8A:F6:42:A4:29:02:B2:86
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/g6tRIUFs7yAiqqTOivZCpCkCsoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.160.0/24
Signature Algorithm: sha256WithRSAEncryption
94:c5:c9:d2:c7:76:67:1c:55:a8:56:1a:d8:56:e9:e6:64:5f:
57:d7:47:a9:4f:16:30:95:f3:3e:f1:90:1d:9f:e7:37:96:65:
e9:73:98:c2:99:cb:5e:fb:0f:96:18:df:fd:da:e5:60:a9:65:
b8:33:eb:d3:1b:2e:6b:7c:ed:e2:ec:f9:11:35:a0:e8:45:2b:
e4:4b:96:e9:94:10:be:57:18:e9:5b:7a:28:72:46:59:93:8c:
cb:9f:25:68:78:74:73:75:ac:00:33:da:29:cc:bc:9b:f1:95:
76:7e:27:25:e5:e6:96:fd:97:ce:c2:16:07:36:af:08:86:5d:
c4:07:ab:55:3c:f8:cb:3e:54:c7:29:26:ae:6d:a5:6f:18:3f:
6a:35:ac:3d:85:4b:1c:4e:bd:14:8c:be:d2:f3:b5:78:4b:97:
fe:f2:1a:b7:3e:b5:9a:60:26:78:59:77:35:59:c0:e8:f3:f3:
1c:22:e9:08:7e:9f:41:40:1a:b0:50:83:43:40:a4:63:18:e2:
76:4d:47:88:8f:37:e6:79:e1:db:62:38:54:cd:a4:5d:11:3b:
1f:40:cc:75:c9:a0:8a:2d:dc:9b:4c:f7:67:64:2b:78:3e:05:
c6:5b:ea:d4:c6:1a:39:80:11:c2:67:39:d6:b3:5a:a9:a9:dd:
a5:7e:6c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:43 2024 by rpki-client on console-ams.rpki-client.org